As you speak about iptables I assume you are running a Linux 2.4
kernel, then Squid should be configured with --enable-linux-netfilter.
Note: It is strongly advised to use iptables in favor of ipchains on
Linux-2.4. ipchains under Linux-2.4 is not the same ipchains as
Linux-2.2 but a poorly tested emulation layer ontop of netfilter.
This ipchains emulation layer is known to be broken in quite many
Linux-2.4 versions, especially when doing redirection..
And note: Only traffic routed via the Squid server can be
intercepted. See the Squid FAQ for at least three alternatives on how
to route the traffic to the Squid server..
General advice: Avoid interception if you can. It is a very ugly TCP
hack and should only be used as a last resort.
Regards
Henrik
On Friday 19 April 2002 15:41, Payal wrote:
> On Thursday 18 April 2002 03:55 pm, you wrote:
> Yes, I did that.
> httpd_accel_host virtual
> httpd_accel_port 80
> httpd_accel_with_proxy on
> httpd_accel_uses_host_header on
> What more do I need?
> I just cannot seem to get it working.
> Thanks and waiting for the reply.
> -Payal
>
> > http://squid.visolve.com/squid24s1/httpd_accelerator.htm
> >
> > Regards,
> > Uli
> >
> > -----Ursprüngliche Nachricht-----
> > Von: Payal [mailto:rpayal@indiainfo.com]
> > Gesendet: Freitag, 19. April 2002 05:49
> > An: squid
> > Betreff: [squid-users] proxy : redirect
> >
> >
> > Hello,
> > I am using squid 2.4 stable4 and ipchains 1.3.10.
> > I prefer to use for the time being ipchains instead of iptables.
> > Now squid is running properly. I can see access.log files getting
> > updated. i use a banner redirector which also works, so squid
> > does work properly. No doubt about it. Now I don't want to
> > configure each browser. So, I want all http requests to redirect
> > to squid. So, I do simple setup like, ipchains -A input -j ACCEPT
> > -s localhost -d localhost
> > ipchains -A input -p tcp -d 0/0 80 -j REDIRECT 3128
> > #ipchains -L
> > Chain input (policy ACCEPT):
> > target prot opt source destination
> > ports ACCEPT all ------ localhost.localdomain
> > localhost.localdomain n/a REDIRECT tcp ------ anywhere
> > anywhere any -> http => squid
> > Chain forward (policy ACCEPT):
> > Chain output (policy ACCEPT):
> > Still, I cannot get this whole thing to work. I can see [ from
> > access.log ] that a browser which is not configured to use squid
> > does not use squid at all.
> > Please tell me what is missing?
> > Thanks a lot for the time in advance and bye.
> > -Payal
-- MARA Systems AB, Giving you basic free Squid support Your source of advanced web reverse proxying solutions http://www.marasystems.com/producs/Received on Fri Apr 19 2002 - 16:03:12 MDT
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:07:37 MST